Risk Management

IT Audit Manager

  • Westlake, TX

Salary depends on a variety of factors including location and experience. Your recruiter will discuss with you.

Salary: listed in the job description
or discussed with your recruiter

This On-site role sed sagittis, nulla vitae maximus fermentum, magna felis sodales nunc, in dapibus dui libero non lacus.

On-site

Experience: Manager
ID: 2103849

Job Description:

Position Description:

Performs data-driven, risk-based IT audit assessments of key software systems and applications using Identity and Access Management, Authentication Services, DevSecOps, and Encryption. Reports on technical issues and software solutions to improve the control environment within operating systems — UNIX/Linux, Windows, and Mainframe, Amazon Web Services (AWS), Azure, Openstack, and Google. Identifies and assess technological risks and provides advice to management regarding mitigation of these risks using Datadog, CloudAware, Divvy Cloud, and Cloudability. Enhances existing IT controls and enterprise cybersecurity frameworks within database systems — Oracle, DB2, and SQL Server. Develops automation for assessing controls related to software applications, systems, networks, computer operations, databases, and production support processes using Python, PowerShell, and Java.

Primary Responsibilities:

  • Leads or participates in professional teams to execute technical audit projects.
  • Evaluates the design and effectiveness of applications, infrastructure, and cybersecurity controls and processes.
  • Identifies and addresses systemic gaps in control environment technology risk management.
  • Develops data analytics, and applies leading edge technologies and automated tools to provide management with proper context of potential exposures (to control weaknesses).
  • Develops an ongoing trusted advisor relationship with internal clients and Audit business unit colleagues to ensure timely and consistent controls advice.
  • Collaborates with business, technology, security, legal, and privacy practitioners to evaluate initiatives that protect employee and customer privacy.
  • Collaborates with application developers, system architects, engineers, and security practitioners to perform readiness assessments of pre-production applications and systems.
  • Develops and implements strategies to mitigate risks and enhance the overall security posture.
  • Communicates emerging issues across technologies and business processes to management and stake holders.
  • Leverages audit automation tools in the evaluation of business operations and systems.
  • Performs and reviews audit test work by organizing and analyzing data, testing controls and documenting results.
  • Applies strategic and data analytics concepts, principles, and techniques to more efficiently and effectively identify control deficiencies.
  • Drafts audit reports to provide a clear description of issues identified, related implications to the business or enterprise as a whole and management action plans to resolve the issues.
  • Coaches and mentors Analysts and Senior Analysts on the team.
  • Plans and executes multiple concurrent IT audits, including reviews of cybersecurity, existing production applications, systems currently being developed, technology infrastructure, and specialized/emerging technologies.
  • Works with business and technology management to build an understanding of complex functions in order to assess the design and operating effectiveness of controls.

Education and Experience:

Bachelor’s degree (or foreign education equivalent) in Computer Science, Engineering, Information Technology, Information Assurance, Mathematics, Physics, or a closely related field and three (3) years of experience as an IT Audit Manager (or closely related occupation) performing IT audit, information security, and risk management of enterprise or financial services applications and IT infrastructure (on premises or in the Cloud).

Or, alternatively, Master’s degree (or foreign education equivalent) in Computer Science, Engineering, Information Technology, Information Assurance, Mathematics, Physics, or a closely related field and one (1) year of experience as an IT Audit Manager (or closely related occupation) performing IT audit, information security, and risk management of enterprise or financial services applications and IT infrastructure (on premises or in the Cloud).

Skills and Knowledge:

Candidate must also possess:

  • Demonstrated Expertise (“DE”) coordinating operational and technology risk analysis and assessments of financial applications and processes using data visualization and reporting on Power BI; and identifying technology and operational controls weaknesses incorporating systems accuracy and security weaknesses to mitigate risk by consulting the senior management on risk profile using audit tools built using Python and KNIME.
  • DE coordinating and executing risk-based and data-driven audit engagements for large-scale financial service technology platforms on Amazon Web Services (AWS) – including containers (ECS or EKS) and database environments (RDS, Dynamo Db, Oracle on EC2, S3, or Snowflake); and evaluating CIA controls on distributed Java, Oracle, mobile, caching, queueing and messaging frameworks.
  • DE evaluating the security and quality control design and effectiveness for Continuous Integration /Continuous Deployment (CI/CD) pipelines and tooling using DevOps and vulnerability scanning platforms — Bitbucket, Github, Jenkins, Artifactory, or Mend; and identifying security gaps in privileged accounts administration, secrets management, branch configurations, and identity and access management using Active Directory, SAML, oAuth, or CyberArk.
  • DE evaluating IT General controls by performing control evaluation in adherence to cybersecurity principles and information security standards — NIST CSF, ISO 27001; designing and implementing review of privilege access management, networking, resiliency, data security, change management, and performance monitoring controls using Qualys, DivvyCloud, ServiceNow, SailPoint or Fusion.

#PE1M2

Certifications:

Company Overview

Fidelity Investments is a privately held company with a mission to strengthen the financial well-being of our clients. We help people invest and plan for their future. We assist companies and non-profit organizations in delivering benefits to their employees. And we provide institutions and independent advisors with investment and technology solutions to help invest their own clients’ money.

Join Us

At Fidelity, you’ll find endless opportunities to build a meaningful career that positively impacts peoples’ lives, including yours. You can take advantage of flexible benefits that support you through every stage of your career, empowering you to thrive at work and at home. Honored with a Glassdoor Employees’ Choice Award, we have been recognized by our employees as a top 10 Best Place to Work in 2024. And you don’t need a finance background to succeed at Fidelity—we offer a range of opportunities for learning so you can build the career you’ve always imagined.

Fidelity’s hybrid working model blends the best of both onsite and offsite work experiences. Having the majority of our associates work onsite is important for our business strategy and our culture. We also value the benefits that working offsite offers associates. Most roles listed as Hybrid will require associates to work onsite all business days of every other week in a Fidelity office. This does not apply to roles listed as Remote or Onsite.

At Fidelity, we value honesty, integrity, and the safety of our associates and customers within a heavily regulated industry. Certain roles may require candidates to go through a preliminary credit check during the screening process. Candidates who are presented with a Fidelity offer will need to go through a background investigation, detailed in this document, and may be asked to provide additional documentation as requested. This investigation includes but is not limited to a criminal, civil litigations and regulatory review, employment, education, and credit review (role dependent). These investigations will account for 7 years or more of history, depending on the role. Where permitted by federal or state law, Fidelity will also conduct a pre-employment drug screen, which will review for the following substances: Amphetamines, THC (marijuana), cocaine, opiates, phencyclidine.

We invite you to Find Your Fidelity at fidelitycareers.com.

Fidelity Investments is an equal opportunity employer. We believe that the most effective way to attract, develop and retain a diverse workforce is to build an enduring culture of inclusion and belonging.

Fidelity will reasonably accommodate applicants with disabilities who need adjustments to participate in the application or interview process. To initiate a request for an accommodation, contact the HR Accommodation Team by sending an email to accommodations@fmr.com.

Apply

Company overview

At Fidelity, we are passionate about making our financial expertise broadly accessible and effective in helping people live the lives they want! We are a privately held company that places a high degree of value in creating and nurturing a work environment that attracts the best talent and reflects our commitment to our associates. We are proud of our diverse and inclusive workplace where we respect and value our associates for their unique perspectives and experiences. For information about working at Fidelity, visit FidelityCareers.com. Fidelity Investments is an equal opportunity employer. Fidelity will reasonably accommodate applicants with disabilities who need adjustments to complete the application or interview process.


If you would like to request an accommodation, please contact us at:

accommodations@fmr.com

Apply Now

All fields are required.

This is my Fidelity

Benefits
Learning & development
Culture

Benefits that adapt to everything life sends your way

401(k) with company match

Medical, dental, vision and prescription drug coverage

16-week maternity leave & 12-week parental leave

Student loan assistance

Fidelity is invested in you

Committed to Professional Development

At Fidelity, we are constantly adapting to the changing needs of our customers, new technologies, and better ways of working. And we empower our employees to do the same, with an emphasis on developing skills and connections that will help propel you forward in your career while being able to make an impact for Fidelity’s customers around the world.

We offer a wide range of options for professional development including online, in-person, and mentor driven solutions. Special interest and networking groups are also part of our culture of empowerment, personal and professional enrichment, diversity and inclusion, and knowledge sharing.

Continuing Education & Training

  • Assess, build, and align your development plan through resources like our skill-building classroom and online courses.
  • Video-based training for technology, leadership, management & more.
  • Ongoing skills development and coaching opportunities.
  • Paid training with a facilitator who is dedicated to your onboarding and will track and evaluate your progress, giving you strategies to improve.
  • A range of talent development programs to support career mobility.

Mentoring

  • Utilize the skills of experienced leaders to enrich your career.
  • Dedicated mentors to help you grow into new areas of Fidelity’s business as you develop new skills.
  • An open atmosphere of knowledge sharing and collaboration.
  • Opportunities to pay it forward, sharing the knowledge you develop and as you help others define how they want their career to take shape.

Our Commitment to Diversity and Inclusion

"Fidelity believes in, and is committed to, fair and equitable treatment for every associate and customer, and to creating a safe and respectful environment, in which everyone is treated with kindness, compassion and respect." Abby Johnson | Chairman and CEO Fidelity Investments

At Fidelity, we are committed to building an enduring culture of inclusion and belonging that will attract, develop and retain a diverse workforce.

Fidelity’s ten affinity groups are self-organized groups of employees with common interests in areas such as race, ethnicity, gender or sexual orientation, or who share similar interests based on similar sets of experiences.

These Employee Resource Groups and Special Interest Groups are models of inclusion for Fidelity. They’re also a powerful form of engagement and development and can provide a pathway to visible leadership roles. Our affinity groups make a large contribution on the business, helping to ensure our products and services are delivered in a welcoming and equitable environment.

  • Over 22K employees participate in an affinity group.
  • Over 1,400 affinity group members volunteered for Fidelity Cares in 2020.
  • 74% increase in affinity group memberships over the last three years.

Giving Back to Our Communities

Throughout Fidelity, you’ll find a genuine commitment to social responsibility – where we strive to make an impact for customers, while also making an impact on the world.

Fidelity Cares

  • Provides associates with opportunities to actively volunteer and share their talents.
  • Hosts numerous company-wide volunteer events (in-person and virtual).
  • Partners with nonprofit organizations to support our local communities.
  • More than 12,000 associates donate time annually – from interns to SVPs.
  • Impact includes refurbishing schools, donating books and supplies, and teaching financial literacy.

Fidelity Charitable®

  • Created to make it easy for people to support charitable organizations they care about.
  • Helped deliver $7.3 billion in donor-recommended grants to charity in 2019.
  • Supported more than 300,000 unique charities around the world.
  • Since its inception, more than $42 billion has been given to public charities.

Similar Jobs

Audit Senior Analyst
Audit
No
Posted: 4 days ago
IT Audit Manager
Audit
No
Posted: 11 days ago